$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a343a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a343a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: Pnr0Gd2uStECfCD9GhtX1ME9Yg2KLt5qwOkOBy3L3go= Subject key identifier: A9:CF:24:89:68:E6:2D:14:99:1E:C5:5A:6B:A3:C2:D9:0E:F0:AC:7E Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 32C3CEAFFBF3056730A3822C13F1AC3A44FDE2FE Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a343a3a2f34382d3438203d3e203338353234.roa Signing time: Tue 08 Aug 2023 22:00:00 +0000 ROA not before: Tue 08 Aug 2023 21:55:00 +0000 ROA not after: Tue 06 Aug 2024 22:00:00 +0000 asID: 38524 IP address blocks: 2401:de80:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 09:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:c3:ce:af:fb:f3:05:67:30:a3:82:2c:13:f1:ac:3a:44:fd:e2:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Aug 8 21:55:00 2023 GMT Not After : Aug 6 22:00:00 2024 GMT Subject: CN=A9CF248968E62D14991EC55A6BA3C2D90EF0AC7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a2:6f:13:b3:eb:f2:24:a0:91:dd:ce:62:91: 07:3d:10:3e:68:b9:42:e9:80:c3:f2:e8:7e:d8:31: e8:cc:9c:e3:fb:d7:2d:9c:49:d0:7e:bb:a4:98:12: cf:46:50:cb:a1:95:db:37:a2:ad:f0:78:0b:2c:2c: 65:48:2e:a2:2c:1f:9b:18:69:4f:83:0e:7f:b6:d0: c4:0e:85:88:31:2e:c0:4e:d4:70:5d:c7:71:98:60: db:96:92:57:70:59:2e:c6:46:35:a4:72:5b:11:76: ca:b9:fa:07:01:b8:ed:33:d4:37:8b:0f:57:7d:50: db:89:d0:d4:78:50:41:12:2b:98:f8:e5:0e:f4:32: bb:3c:19:19:cc:74:33:10:64:82:ab:28:e5:82:d7: 84:8d:7d:28:9d:04:eb:a7:c8:16:f0:38:ec:59:82: b8:a3:5c:3a:95:92:08:d0:27:44:6c:a1:d1:31:29: a6:fa:05:90:8b:b5:c2:3b:ec:2d:a3:14:6f:8f:07: 2d:49:e4:84:9e:81:f4:ec:81:e2:04:86:12:57:8a: ab:84:52:86:48:ac:65:43:98:6f:19:d4:1b:14:7d: b7:cc:8f:50:4d:80:55:56:cb:e3:ec:83:7a:9a:81: 02:29:0d:28:1c:c3:8d:0a:49:32:95:72:aa:cf:d3: 12:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:CF:24:89:68:E6:2D:14:99:1E:C5:5A:6B:A3:C2:D9:0E:F0:AC:7E X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a343a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:4::/48 Signature Algorithm: sha256WithRSAEncryption 41:d0:36:d0:30:a1:b4:7a:6f:16:cd:db:6f:6b:66:7b:92:18: 5b:71:ac:4a:ff:26:49:e1:9c:76:2a:82:5c:2a:49:d2:67:50: be:55:92:4c:13:f8:4f:1a:75:56:1c:32:fd:77:f2:dd:6c:e4: 3d:2f:1e:76:6a:6c:28:a0:c4:03:0e:9e:c8:01:e7:34:14:03: 60:0b:38:cf:73:ee:70:7b:c1:19:96:8b:75:92:32:59:ad:ff: 13:a5:0b:37:d6:8a:cf:93:99:d1:b6:65:cd:d9:41:d9:0b:d3: 5f:80:a0:14:4c:62:cc:74:f8:48:a2:d2:f6:ae:43:1f:cc:b9: a3:1b:22:89:20:70:36:e7:4b:12:e4:cf:44:98:2e:23:5c:15: d0:46:ae:2b:21:38:66:6f:b9:c7:9e:9a:53:d2:db:6b:75:cf: a2:cb:ac:42:fc:85:91:8b:c4:e1:bc:3f:5c:17:14:90:1d:3b: b7:cd:a3:13:be:36:b3:d8:2c:49:72:c7:17:3b:e0:c2:14:22: 88:62:12:2c:db:1f:2b:7c:3c:21:6a:16:ec:3c:8e:6e:d2:27: 38:51:c9:c7:a2:f0:34:1d:b1:79:19:bd:0b:1a:46:0b:ad:1b: 71:3a:e3:d3:53:6a:14:0a:3d:3c:31:aa:c2:98:fd:07:c5:20: 6d:80:26:7e -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUMsPOr/vzBWcwo4IsE/GsOkT94v4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yMzA4MDgyMTU1MDBaFw0yNDA4MDYyMjAwMDBaMDMxMTAvBgNV BAMTKEE5Q0YyNDg5NjhFNjJEMTQ5OTFFQzU1QTZCQTNDMkQ5MEVGMEFDN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYom8Ts+vyJKCR3c5ikQc9ED5o uULpgMPy6H7YMejMnOP71y2cSdB+u6SYEs9GUMuhlds3oq3weAssLGVILqIsH5sY aU+DDn+20MQOhYgxLsBO1HBdx3GYYNuWkldwWS7GRjWkclsRdsq5+gcBuO0z1DeL D1d9UNuJ0NR4UEESK5j45Q70Mrs8GRnMdDMQZIKrKOWC14SNfSidBOunyBbwOOxZ grijXDqVkgjQJ0RsodExKab6BZCLtcI77C2jFG+PBy1J5ISegfTsgeIEhhJXiquE UoZIrGVDmG8Z1BsUfbfMj1BNgFVWy+Psg3qagQIpDSgcw40KSTKVcqrP0xLnAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUqc8kiWjmLRSZHsVaa6PC2Q7wrH4wHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAEMA0G CSqGSIb3DQEBCwUAA4IBAQBB0DbQMKG0em8Wzdtva2Z7khhbcaxK/yZJ4Zx2KoJc KknSZ1C+VZJME/hPGnVWHDL9d/LdbOQ9Lx52amwooMQDDp7IAec0FANgCzjPc+5w e8EZlot1kjJZrf8TpQs31orPk5nRtmXN2UHZC9NfgKAUTGLMdPhIotL2rkMfzLmj GyKJIHA250sS5M9EmC4jXBXQRq4rIThmb7nHnppT0ttrdc+iy6xC/IWRi8ThvD9c FxSQHTu3zaMTvjaz2CxJcscXO+DCFCKIYhIs2x8rfDwhahbsPI5u0ic4UcnHovA0 HbF5Gb0LGkYLrRtxOuPTU2oUCj08MarCmP0HxSBtgCZ+ -----END CERTIFICATE-----Generated at Thu Apr 25 09:16:52 2024 by rpki-client on console-ams.rpki-client.org